$ rpki-client -vvf rpki.apnic.net/member_repository/A9199656/A5E7CD7623E111F0A650EA23C4F9AE02/ycMLfFfi8BbbHwHAnlkuBQR0yaY.mft File: ycMLfFfi8BbbHwHAnlkuBQR0yaY.mft (raw, json) Hash identifier: yFlPgq7Zpi+LjUeyBUcmownxeNvGABb5AHI2f0pg0DE= Subject key identifier: A2:47:E0:07:06:12:86:D7:96:39:BA:01:46:00:7E:CD:9D:B4:DB:8A Authority key identifier: C9:C3:0B:7C:57:E2:F0:16:DB:1F:01:C0:9E:59:2E:05:04:74:C9:A6 Certificate issuer: /CN=A9199656/serialNumber=C9C30B7C57E2F016DB1F01C09E592E050474C9A6 Certificate serial: 12 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ycMLfFfi8BbbHwHAnlkuBQR0yaY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9199656/A5E7CD7623E111F0A650EA23C4F9AE02/ycMLfFfi8BbbHwHAnlkuBQR0yaY.mft Manifest number: 11 Signing time: Sat 31 May 2025 07:35:34 +0000 Manifest this update: Sat 31 May 2025 07:35:33 +0000 Manifest next update: Sat 07 Jun 2025 07:35:33 +0000 Files and hashes: 1: ycMLfFfi8BbbHwHAnlkuBQR0yaY.crl (hash: 40EO1Z0Ia77ydLsdPGFEWayNaOKnrYEwsTnhMyYE3yg=) 2: 45D237A423E211F0A5DCED27C4F9AE02.roa (hash: 3wfdkAiEkFODU6B4YeHm0vdAyiuwr8rUvXL2nV5+auc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9199656/A5E7CD7623E111F0A650EA23C4F9AE02/ycMLfFfi8BbbHwHAnlkuBQR0yaY.crl rsync://rpki.apnic.net/member_repository/A9199656/A5E7CD7623E111F0A650EA23C4F9AE02/ycMLfFfi8BbbHwHAnlkuBQR0yaY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ycMLfFfi8BbbHwHAnlkuBQR0yaY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 07:35:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18 (0x12) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9199656, serialNumber=C9C30B7C57E2F016DB1F01C09E592E050474C9A6 Validity Not Before: May 31 07:35:33 2025 GMT Not After : Jun 7 07:35:33 2025 GMT Subject: CN=683ab146-4f41 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:2f:4b:44:47:ee:d2:c9:ad:b3:94:51:9c:42: 51:e8:7c:f2:0a:16:89:f3:90:14:fb:43:b3:dd:63: 85:26:4f:89:77:3b:57:4c:08:22:ef:4e:1c:ff:0f: ad:50:aa:36:74:96:57:57:ac:05:da:03:11:d1:5d: d3:07:cf:46:0e:c3:7d:f6:f0:cd:73:5f:45:f3:37: 2c:ce:83:af:84:72:af:86:78:d2:71:69:dd:14:84: 6d:d0:a2:a5:c5:ae:2d:95:1c:16:6e:ea:a0:36:1f: 32:65:84:f2:8e:01:83:d7:b9:63:08:18:37:e3:b7: 12:81:7c:50:02:64:b0:03:01:59:ac:f6:d4:4a:09: 17:5d:9a:f3:fb:91:e4:da:35:b0:1d:8f:3e:79:9f: 19:4a:31:98:90:fa:50:b1:a6:a1:37:9d:0a:0f:04: a9:0d:57:bb:d7:53:5c:72:e7:85:b0:84:72:c6:e8: c8:85:63:e7:45:98:d9:65:26:b1:7f:13:68:a1:9f: 91:bc:42:b1:2b:15:34:c5:35:c8:e9:6c:65:74:a4: 36:06:f8:ef:4d:c4:e9:6d:95:c5:ac:e5:fd:97:2c: ef:80:ea:eb:4b:16:5d:80:9d:42:98:32:33:9d:3e: 8a:92:ba:74:5d:c4:36:c3:3d:1d:b3:46:79:5c:11: 41:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:47:E0:07:06:12:86:D7:96:39:BA:01:46:00:7E:CD:9D:B4:DB:8A X509v3 Authority Key Identifier: keyid:C9:C3:0B:7C:57:E2:F0:16:DB:1F:01:C0:9E:59:2E:05:04:74:C9:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9199656/A5E7CD7623E111F0A650EA23C4F9AE02/ycMLfFfi8BbbHwHAnlkuBQR0yaY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ycMLfFfi8BbbHwHAnlkuBQR0yaY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9199656/A5E7CD7623E111F0A650EA23C4F9AE02/ycMLfFfi8BbbHwHAnlkuBQR0yaY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:fb:be:47:78:ec:16:8e:02:f9:74:83:b9:47:3f:3d:8d:3f: 5b:dd:17:e4:89:a7:0e:14:c0:ed:89:c3:2b:42:45:2f:0d:b3: 31:46:2d:4c:44:7f:61:f5:e8:41:d6:63:27:31:b1:b1:b7:a9: 28:e8:73:85:e5:d7:34:5c:cd:a8:7f:a5:80:ac:2e:2b:fa:48: c9:3f:09:cc:a0:46:d9:00:fe:fb:a5:50:c2:af:fe:39:34:9e: 3e:48:7c:c4:9f:9e:2e:f8:bd:a4:83:8e:99:8d:7e:56:32:2c: 9b:2b:59:b0:b3:cc:99:82:0c:b6:d3:8a:d7:0d:d6:7f:2c:5e: 04:a1:43:be:f1:5f:a3:99:e4:2d:d1:4e:85:d3:c6:31:5b:73: 9d:f4:f1:e4:ab:4f:92:27:83:17:fa:86:cd:10:41:9a:8c:5b: d4:4b:3c:05:e8:ad:44:cb:95:64:1c:6c:9c:bb:69:65:0a:23: a2:1d:40:3a:c1:ae:31:9c:3b:82:97:60:e8:a8:99:e2:d5:d2: 86:1a:26:a5:61:ce:15:eb:37:91:07:dc:96:76:fe:5a:da:30: fb:12:ca:d2:d2:ef:c0:19:d9:2a:bb:cc:8b:63:d7:b1:b1:02: e6:53:1f:6c:db:00:4a:7e:65:5c:77:53:34:63:4a:66:d9:ae: 70:86:54:fb -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBEjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 OTY1NjExMC8GA1UEBRMoQzlDMzBCN0M1N0UyRjAxNkRCMUYwMUMwOUU1OTJFMDUw NDc0QzlBNjAeFw0yNTA1MzEwNzM1MzNaFw0yNTA2MDcwNzM1MzNaMBgxFjAUBgNV BAMTDTY4M2FiMTQ2LTRmNDEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCXL0tER+7Sya2zlFGcQlHofPIKFonzkBT7Q7PdY4UmT4l3O1dMCCLvThz/D61Q qjZ0lldXrAXaAxHRXdMHz0YOw3328M1zX0XzNyzOg6+Ecq+GeNJxad0UhG3QoqXF ri2VHBZu6qA2HzJlhPKOAYPXuWMIGDfjtxKBfFACZLADAVms9tRKCRddmvP7keTa NbAdjz55nxlKMZiQ+lCxpqE3nQoPBKkNV7vXU1xy54WwhHLG6MiFY+dFmNllJrF/ E2ihn5G8QrErFTTFNcjpbGV0pDYG+O9NxOltlcWs5f2XLO+A6utLFl2AnUKYMjOd PoqSunRdxDbDPR2zRnlcEUFDAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUokfgBwYS hteWOboBRgB+zZ2024owHwYDVR0jBBgwFoAUycMLfFfi8BbbHwHAnlkuBQR0yaYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk5NjU2L0E1RTdDRDc2MjNF MTExRjBBNjUwRUEyM0M0RjlBRTAyL3ljTUxmRmZpOEJiYkh3SEFubGt1QlFSMHlh WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIveWNNTGZGZmk4QmJiSHdIQW5sa3VCUVIweWFZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk5 NjU2L0E1RTdDRDc2MjNFMTExRjBBNjUwRUEyM0M0RjlBRTAyL3ljTUxmRmZpOEJi Ykh3SEFubGt1QlFSMHlhWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADP7vkd47BaOAvl0g7lHPz2NP1vdF+SJpw4UwO2JwytCRS8NszFGLUxE f2H16EHWYycxsbG3qSjoc4Xl1zRczah/pYCsLiv6SMk/CcygRtkA/vulUMKv/jk0 nj5IfMSfni74vaSDjpmNflYyLJsrWbCzzJmCDLbTitcN1n8sXgShQ77xX6OZ5C3R ToXTxjFbc5308eSrT5Ingxf6hs0QQZqMW9RLPAXorUTLlWQcbJy7aWUKI6IdQDrB rjGcO4KXYOiomeLV0oYaJqVhzhXrN5EH3JZ2/lraMPsSytLS78AZ2Sq7zItj17Gx AuZTH2zbAEp+ZVx3UzRjSmbZrnCGVPs= -----END CERTIFICATE-----Generated at Sat May 31 16:55:03 2025 by rpki-client